Solved

Active Directory change default common name CN

Posted on 2006-06-29
9
3,500 Views
Last Modified: 2011-09-20
In Windows 2003 AD, the user object field "Full Name" sets the CN (common name) and displayName among some other things.

In my domain we like to have the display name as "last name, first name" -- so that's what is in the Full Name box.

Unfortunately, that also makes the CN the same thing.  I need the CN to be the same as the user logon name which is "first initial last name".

Does anyone know how I can change directly or separate the CN from the Full Name field?

Thanks
0
Comment
Question by:ipmcinc
  • 7
  • 2
9 Comments
 
LVL 26

Expert Comment

by:Pber
ID: 17013186
Load adsi edit
Connect to the configuration container
Then CN=displayspecifiers
then CN=409 for english (this might be specifig to your region)
then CN=Users-Display and right click and properties
Then go to the attribute createDialog
Change the value to:

%<i>%<givenName>

this will change new users, existing users you will have to do a rename to fix (I think).
0
 
LVL 26

Expert Comment

by:Pber
ID: 17013229
Also check out this article

http://www.computerperformance.co.uk/exchange2003/exchange2003_GAL_custom_display.htm#Custom%20Display%20Names

You can use ADmodify to change the existing accounts.
0
 
LVL 26

Expert Comment

by:Pber
ID: 17013292
Sorry I was a bit off on the syntax

Use this instead:

%1<givenName>%<sn>

0
NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

 
LVL 26

Expert Comment

by:Pber
ID: 17013322
Note this method will change the way your users show up in the GAL which might be bad.  You might be able to do a ADmodify to just change the CN.
0
 

Author Comment

by:ipmcinc
ID: 17013410
Do you know how to change what the default CN is?

Currently the default CN is whatever the Full Name is; which is last name, first name ( i.e. smith, john)

When I add new users in the future, I want the default CN to be whatever the Logon Name is; which is first initial last name (i.e. jsmith)

Thanks!
0
 
LVL 26

Expert Comment

by:Pber
ID: 17013442
The above method will do just that...

Ours is set to:
%<sn>, %<givenName>

All of our users CN's are:
CN=lastname\, firstname, Ou=blahblahblah
0
 
LVL 26

Accepted Solution

by:
Pber earned 500 total points
ID: 17013581
After playing with this in the lab, it doesn't look like you can use partials.  

On an exchange recipient policy you can do something like %1g%i%s@email.com

See: http://support.microsoft.com/kb/250455/en-us

Apparently you can't with this.  You'd have to do the fullname lastname

%<givenName>%<sn>
0
 

Author Comment

by:ipmcinc
ID: 17013615
If I change CN=Users-Display, I believe that would change the display name.  I don't want to change the display name.

I want to change the "Full Name" field
0
 
LVL 26

Expert Comment

by:Pber
ID: 17013673
When I change the settings in the lab and click apply and start creating a new user, it immediately starts filling in the Fullname field in the format that is specified by the createDialog
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Many of us need to configure DHCP server(s) in their environment. We can do that simply via DHCP console on server or using MMC snap-in on each computer with Administrative Tools installed in a network. But what if we have to configure many DHCP ser…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

789 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question